NAT Overview
Figure 17-2
209.165.201.0/27 through FWSM
See the following commands for this example:
hostname(config)# nat (inside) 1 10.1.2.0 255.255.255.0
hostname(config)# global (outside) 1 209.165.201.1-209.165.201.15
NAT Control
NAT control requires that packets traversing from an inside interface to an outside interface match a NAT
rule; for any host on the inside network to access a host on the outside network, you must configure NAT
to translate the inside host address, as shown in
Figure 17-3
10.1.1.1
10.1.2.1
Cisco Security Appliance Command Line Configuration Guide
17-4
NAT Example: Transparent Mode
www.example.com
Static route on router to
Security
appliance
NAT Control and Outbound Traffic
Security
Appliance
209.165.201.1
NAT
No NAT
Inside
Outside
Internet
Source Addr Translation
10.1.2.27
10.1.2.1
Management IP
10.1.2.2
Host
10.1.2.27
Figure
17-3.
Chapter 17
Configuring NAT
209.165.201.10
OL-12172-03